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DETAILED ACTION 

1 . Claims 1 -3, 6-1 3, 1 6-1 9, and 21 -24 are currently pending in this application. 

2. Claims 1,10, and 21 are amended as filed on 06/23/2009. 

3. Claim 24 is new as filed on 06/23/2009. 

Claim Rejections - 35 USC § 103 

4 The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 1, 9-10, 18-19, and 21-24 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Moore et al. (Patent No. US 7,000,015 B2), hereinafter 
Moore, in view of Yufik (Patent No. 5,794,224). 

6. With respect to claim 1 , Moore disclosed a method for associating computer 
network identifications with network policies (column 17, lines 4-7), said method 
comprising the steps of: analyzing a network interface associated with a client computer 
using a plurality of network detectors (column 13, lines 28-34, 38-44, where the NLRSP 
is not a single entity, rather, it is a set of services that combined form the plurality of 
network detectors. Furthermore, analysis is required to perform the functions of the 
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NLRSP), the detectors outputting a set of netspecs (column 14, lines 61-66, where the 
set of netspecs is the GUID and the other information that applications frequently need), 
each netspec comprising a first token identifying a detector used for the analysis 
(column 14, lines 61-66, where the GUID is discovered by the first token according to 
the first token's description found in the applicant's specification on page 5) and a 
second token identifying the analyzed network interface (column 14, lines 61-66, where 
the other information is determined from the second token. Also, see column 16, lines 
27-29, which shows that detecting an IP address is part of the NLRSP in accordance 
with the applicant's specification on page 5); 

Moore also disclosed sorting the set of netspecs in a priority order based at least 
in part on the reliability of the detectors that output the netspecs (column 14, lines 61- 
66, where the set of netspecs is the GUID and the if a detectors is unreliable, i.e. fails, 
then it will not send the associated data that would have been detected. Thus, the 
prioritization has been modified as the data is not there to be prioritized Furthermore, 
the priority module that the data is in would be the data structure responsible for storing 
the information. Where the priority could be as simple as grabbing the next piece of 
data in a queue.); associating the network identifications made by the netspecs with 
locations based at least in part on the priority order of the set of netspecs (column 13, 
lines 43-44, where the priority order is the one in the aforementioned queue) and 
feeding associated network identification/ locations pairs (column 13, lines 59-67 to 
column 14, line 1) to a network interface module to implement desired network policies 
(column 13, lines 28-34). 
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However, Moore did not explicitly state wherein detectors considered more 
reliable in observing network interfaces than other detectors are awarded priority in the 
sorting. On the other hand, Yufik did teach wherein detectors considered more reliable 
in observing network interfaces than other detectors are awarded priority in the sorting 
(abstract, lines 1-13). Both the systems of Moore and Yufik are directed towards self- 
adaptive networks to improve network performance (see Moore, Column 1, lines 28-33, 
where the cited reference describes one of the problems Moore is attempting to solve). 
Therefore, it would have been obvious to a person having ordinary skill in the art, at the 
time of the invention, to modify the teachings of Moore, to utilize prioritization based on 
comparison reliability, as taught by Yufik, in order to provide a system that is more 
reliable, by utilizing nodes that are more reliable. 

7. As for claim 9, the combination of Moore and Yufik disclosed all of the limitations 
described in claim 1 . In addition, Moore taught wherein the step of feeding the 
associated network identification/location (column 13, lines 59-67 to column 14, line 1) 
pairs to a network interface module comprises using a policy guide to feed the network 
identification/location pairs to the network interface module on a real-time basis (column 
13, lines 38-42). 

8. With respect to claim 10, Moore disclosed an apparatus for associating computer 
network identifications with network policies (column 17, lines 4-7), said apparatus 
comprising the steps of: analyzing a network interface associated with a client computer 
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using a plurality of network detectors (column 13, lines 28-34, 38-44, where the NLRSP 
is not a single entity, rather, it is a set of services that combined form the plurality of 
network detectors. Furthermore, analysis is required to perform the functions of the 
NLRSP), the detectors outputting a set of netspecs (column 14, lines 61-66, where the 
set of netspecs is the GUID and the other information that applications frequently need), 
each netspec comprising a first token identifying a detector used for the analysis 
(column 14, lines 61-66, where the GUID is discovered by the first token according to 
the first token's description found in the applicant's specification on page 5) and a 
second token identifying the analyzed network interface (column 14, lines 61-66, where 
the other information is determined from the second token. Also, see column 16, lines 
27-29, which shows that detecting an IP address is part of the NLRSP in accordance 
with the applicant's specification on page 5); 

Moore also taught sorting the set of netspecs in a priority order based at least in 
part on the reliability of the detectors that output the netspecs (column 1 4, lines 61-66, 
where the set of netspecs is the GUID and the if a detectors is unreliable, i.e. fails, then 
it will not send the associated data that would have been detected. Thus, the 
prioritization has been modified as the data is not there to be prioritized. Furthermore, 
the priority module that the data is in would be the data structure responsible for storing 
the information. Where the priority could be as simple as grabbing the next piece of 
data in a queue.); coupled to the sorting means, means for associating the network 
identifications made by the netspecs with locations (column 13, lines 43-44, where the 
priority order is the one in the aforementioned queue) and feeding associated network 



Application/Control Number: 10/826,468 Page 6 

Art Unit: 2451 

identification/ locations pairs (column 13, lines 59-67 to column 14, line 1) to a network 
interface module to implement desired network policies (column 13, lines 28-34). 

However, Moore did not explicitly state wherein detectors considered more 
reliable in observing network interfaces than other detectors are awarded priority in the 
sorting. On the other hand, Yufik did teach wherein detectors considered more reliable 
in observing network interfaces than other detectors are awarded priority in the sorting 
(abstract, lines 1-13). Both the systems of Moore and Yufik are directed towards self- 
adaptive networks to improve network performance (see Moore, Column 1, lines 28-33, 
where the cited reference describes one of the problems Moore is attempting to solve). 
Therefore, it would have been obvious to a person having ordinary skill in the art, at the 
time of the invention, to modify the teachings of Moore, to utilize prioritization based on 
comparison reliability, as taught by Yufik, in order to provide a system that is more 
reliable, by utilizing nodes that are more reliable. 

9. As for claim 18, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 10. In addition, Moore taught wherein the feeding means 
comprises: a policy guide for associating the network identifications with the locations 
(column 13, lines 59-67 to column 14, line 1, where the policy guide is inherent to 
unique naming); wherein the network interface module implements the network policies 
based upon the locations fed to the network interface module by the policy guide 
(column 13, lines 28-34). 
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1 0. As for claim 1 9, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 10. In addition, Moore taught coupled to the network 
interface module, a user interface adapted to enable a user of the client computer to 
associate the locations with the network policies (column 17, lines 4-7, furthermore, it is 
implicit that if a user is to interface with the device, then there will be some sort of user 
interface present). 

1 1 . With respect to claim 21 , Moore disclosed at least one computer readable- 
medium containing computer program instructions for associating computer network 
identifications with network policies, said computer program instructions comprising the 
steps of: (column 17, lines 4-7), said method comprising the steps of: analyzing a 
network interface associated with a client computer using a plurality of network 
detectors (column 13, lines 28-34, 38-44, where the NLRSP is not a single entity, rather, 
it is a set of services that combined form the plurality of network detectors. 
Furthermore, analysis is required to perform the functions of the NLRSP), the detectors 
outputting a set of netspecs (column 14, lines 61-66, where the set of netspecs is the 
GUID and the other information that applications frequently need), each netspec 
comprising a first token identifying a detector used for the analysis (column 14, lines 61- 
66, where the GUID is discovered by the first token according to the first token's 
description found in the applicant's specification on page 5) and a second token 
identifying the analyzed network interface (column 14, lines 61-66, where the other 
information is determined from the second token. Also, see column 16, lines 27-29, 
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which shows that detecting an IP address is part of the NLRSP in accordance with the 
applicant's specification on page 5). 

Moore also taught sorting the set of netspecs in a priority order based at least in 
part on the reliability of the detectors that output the netspecs (column 1 4, lines 61-66, 
where the set of netspecs is the GUID and the if a detectors is unreliable, i.e. fails, then 
it will not send the associated data that would have been detected. Thus, the 
prioritization has been modified as the data is not there to be prioritized Furthermore, 
the priority module that the data is in would be the data structure responsible for storing 
the information. Where the priority could be as simple as grabbing the next piece of 
data in a queue.); associating the network identifications made by the netspecs with 
locations (column 13, lines 43-44, where the priority order is the one in the 
aforementioned queue) and feeding associated network identification/ locations pairs 
(column 13, lines 59-67 to column 14, line 1) to a network interface module to 
implement desired network policies (column 13, lines 28-34). 

However, Moore did not explicitly state wherein detectors considered more 
reliable in observing network interfaces than other detectors are awarded priority in the 
sorting. On the other hand, Yufik did teach wherein detectors considered more reliable 
in observing network interfaces than other detectors are awarded priority in the sorting 
(abstract, lines 1-13). Both the systems of Moore and Yufik are directed towards self- 
adaptive networks to improve network performance (see Moore, Column 1, lines 28-33, 
where the cited reference describes one of the problems Moore is attempting to solve). 
Therefore, it would have been obvious to a person having ordinary skill in the art, at the 
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time of the invention, to modify the teachings of Moore, to utilize prioritization based on 
comparison reliability, as taught by Yufik, in order to provide a system that is more 
reliable, by utilizing nodes that are more reliable. 

12. As for claim 22, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 1 . In addition, Moore taught wherein the client computer 
has a plurality of network interfaces (column 17, lines 4-19, where an ICS policy is for a 
first interface and a corporate firewall policy is for a second interface) and further 
comprising: analyzing each of the plurality of network interfaces using the plurality of 
network detectors (column 16, lines 55-57, where determining connection types is 
analyzing network interfaces); and analyzing the netspecs for the plurality of network 
interfaces output by the plurality of network detectors to identify a set of unique network 
interfaces (column 16, lines 58-60, where resolving an internet name utilizes the 
netspecs obtained by the NLRSP); wherein interfaces in the set of unique network 
interfaces are associated with locations responsive to the set of netspecs (column 16, 
lines 37-39, where the private side is the location). 

1 3. As for claim 23, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 1 . In addition, Moore taught associating the network 
interface with a location associated with a highest priority netspec in the set (column 13, 
lines 43-44, where the priority order is the one in the aforementioned queue in the 
rejection of claim 1). 
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14. As for claim 24, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 1 . In addition, Moore taught wherein the plurality of 
netspecs comprises a first netspec and a second netspec, as well as the general use of 
the netspecs representing nodes (column 13, lines 28-34, 38-44, where the NLRSP is 
not a single entity, rather, it is a set of services that combined form the plurality of 
network detectors) and Yufik taught determining that a node that output the first data is 
more reliable than a node that output the second data; and awarding a higher priority to 
the first node based on the first node being output by the more reliable node; and 
sorting the first and second data according to the priority awarded, the first data being 
given a higher priority in the sorting than the second data (abstract, lines 1-13). 

15. Claims 2-3, 6-8, 11-13, and 16-17 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Moore in view of Aaron (Pre-Grant Publication No. US 
2004/0268150 A1). 

16. As for claim 2, the combination of Moore and Yufik disclosed all of the limitations 
described in claim 1 . In addition, Moore taught using a network interface module but did 
not explicitly state it consisting of one of a firewall, a router, a sniffer, and an intrusion 
detection module, a behavior blocking module, or a network communications module. 
However, Aaron did teach it consisting of one of a firewall, a router, a sniffer, and an 
intrusion detection module, a behavior blocking module, or a network communications 
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module (0044, lines 5-7). It would have been obvious to a person of ordinary skill in the 
art at the time of the invention to modify the teachings of Moore, to use a firewall 
module, as taught by Aaron, as firewall technology was available and in common use at 
the time. Furthermore, utilizing firewall technology would have been sought after to 
produce a safer computing environment in a viral computer age. 

1 7. As for claim 3, the combination of Moore and Yufik disclosed all of the limitations 
described in claim 1 , but Moore did not explicitly state a user of the client computer 
adjusts firewall settings to set network policies. However, Aaron did teach a user of the 
client computer adjusts firewall settings to set network policies (0044, lines 4-7) based 
upon location (0042, lines 4-1 1 , where the IP address is a location). It would have been 
obvious to a person of ordinary skill in the art at the time of the invention to modify the 
teachings of Moore, to utilize user settings in conjunction with firewalls, as taught by 
Aaron. At the time, many firewall systems, pop-up blockers, email filters, etc. allowed 
people to block specific addresses. Furthermore, utilizing firewall technology would 
have been sought after to produce a safer computing environment in a viral computer 
age. 

18. As for claim 6, the combination of Moore, Yufik, and Aaron taught all of the 
limitations described in claim 1 . In addition, Aaron taught wherein a user of the client 
computer prioritizes the set of netspecs via a prioritization module (0050, lines 20-23). 
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1 9. As for claim 7, the combination of Moore and Yufik disclosed all of the limitations 
described in claim 1 . In addition, Moore taught wherein the step of associating the 
network identifications with locations comprises using a network probe (column 13, lines 
59-67 to column 14, line 1) and the concept of the netspec (column 13, lines 59-67 to 
column 14, line 1). But Moore did not explicitly state doing so in conjunction with 
databases. However, Aaron did teach such a concept (0040, lines 29-36; 0044, lines 7- 
1 0). It would have been obvious to a person of ordinary skill in the art at the time of the 
invention to modify the teachings of Moore, to utilize device databases, as taught by 
Aaron. At the time, doing so would have provided more efficiency to the system and 
was in common use for data storage. 

20. As for claim 8, the combination of Moore, Yufik, and Aaron taught all of the 
limitations described in claim 7 above. In addition, Moore taught wherein a user of the 
client computer modifies the netspec database via a location setting module (column 
14, lines 52-56, The NLRSP modifies the database of netspecs by changing the location 
names of the netspecs. Furthermore, in the example given, the NLRSP names the 
location helpingout.org when the client is volunteering at a local agency. The name 
helpingout.org signifies that the user modifies the database location names because the 
computer would not know that the human user was volunteering at a local agency 
unless explicitly told). 
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21 . As for claim 1 1 , the combination of Moore and Yufik disclosed all of the 
limitations described in claim 10. In addition, Moore taught using a network interface 
module but did not explicitly state it consisting of one of a firewall, a router, a sniffer, and 
an intrusion detection module, a behavior blocking module, or a network 
communications module. However, Aaron did teach it consisting of one of a firewall, a 
router, a sniffer, and an intrusion detection module, a behavior blocking module, or a 
network communications module (0044, lines 5-7). It would have been obvious to a 
person of ordinary skill in the art at the time of the invention to modify the teachings of 
Moore, to use a firewall module, as taught by Aaron, as firewall technology was 
available and in common use at the time. Furthermore, utilizing firewall technology 
would have been sought after to produce a safer computing environment in a viral 
computer age. 

22. As for claim 12, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 10, but Moore did not explicitly state wherein the network 
interface module is a firewall, and the network policies are implemented on a packet-by- 
packet basis. However, Aaron did teach wherein the network interface module is a 
firewall, and the network policies are implemented on a packet-by-packet basis (0040, 
lines 29-36). It would have been obvious to a person of ordinary skill in the art at the 
time of the invention to modify the teachings of Moore, to use a firewall module, as 
taught by Aaron, as firewall technology was available and in common use at the time. 
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Furthermore, packet transmission is and was the standard form of transmission of 
networks. 

23. As for claim 1 3, the combination of Moore, Yufik, and Aaron described all of the 
limitations described in claim 12 above. In addition, Aaron taught wherein locations are 
correlated with firewall settings on a distributed basis within the firewall (0042, lines 4- 

1 1 , where the IP address is a location). 

24. As for claim 16, the combination of Moore and Yufik disclosed all of the 
limitations described in claim 10, but Moore did not explicitly state a netspec database 
associating the netspecs with locations. However, Aaron did teach such a system 
(0040, lines 29-36; 0044, lines 7-10). It would have been obvious to a person of 
ordinary skill in the art at the time of the invention to modify the teachings of Moore, to 
utilize device databases, as taught by Aaron. At the time, doing so would have provided 
more efficiency to the system and was in common use for data storage. 

25. As for claim 1 7, the combination of Moore, Yufik, and Aaron disclosed all of the 
limitations described in claim 16. In addition, Moore taught coupled to the netspec 
database, a location setting module adapted to enable a user of the client computer to 
associate the locations with the netspecs (column 13, lines 59-67 to column 14, lines 1). 
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Response to Arguments 

26. Applicant's arguments with respect to the claims have been considered but are 
moot in view of the new ground(s) of rejection. 

Conclusion 

27. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to JOSEPH L. GREENE whose telephone number is 
(571 )270-3730. The examiner can normally be reached on Monday - Thursday from 
9:00 AM to 4:00 PM. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, John Follansbee can be reached on (571) 272-3964. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

JLG 

/John Follansbee/ 

Supervisory Patent Examiner, Art Unit 2451 



